[OAUTH-WG] Mail regarding draft-ietf-oauth-token-exchange (version 19)
"Luke Synnestvedt (US - ADVS)" <luke.o.synnestvedt@pwc.com> Mon, 04 November 2019 18:26 UTC
Return-Path: <luke.o.synnestvedt@pwc.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC6FE120CCD for <oauth@ietfa.amsl.com>; Mon, 4 Nov 2019 10:26:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.999
X-Spam-Level:
X-Spam-Status: No, score=-6.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pwc.com header.b=oIGSWFLP; dkim=fail (2048-bit key) reason="fail (body has been altered)" header.d=pwc.com header.b=Mxy4S/G4
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MKnJE9Xcg6nw for <oauth@ietfa.amsl.com>; Mon, 4 Nov 2019 10:26:39 -0800 (PST)
Received: from lxsmpr21.pwc.com (lxsmpr21.pwc.com [155.201.248.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8200120C50 for <oauth@ietf.org>; Mon, 4 Nov 2019 10:26:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pwc.com; h=mime-version : from : date : message-id : subject : to : content-type; s=Gtwy1-06072019-H9MsYnooFYIE; bh=0CO2BOeZ5bF2rUVVt/EK5FNzVGh+oFmajZ/3nMDrQME=; b=oIGSWFLPjfsg8ThDvUJ1huItSlzsxwtC4wmudXxwmErP/+bsOJM6ByzLnBP+qIZ00fBa jZgwzfvsVx8b6927Vzs4j98rfa8PvhU+xpFDPYI5C/4dh+W0nuBBnemqTruYVqq/s5lT f099WiKuX2isqcc5HjuRHdk+CpV00lcjqhLYuvtXvIUViaA7NNnNTEzCgYyQnWwsu8Sn 4I/OMIRG3wS6k6YVB5RoyfVAjOkT/ukP7MKNTO75K88nMiTuK7+wtUcGA3DX9vp8KgK8 r4+lh+FqJ1seJruTTUfthWAAtXWHL3nPVoN4CBTfA8QIUNIOSOY6omDlDG1DweVvWZqm dA==
Received: from mail-ot1-f71.google.com (mail-ot1-f71.google.com [209.85.210.71]) by lxsmpr21.nam.pwcinternal.com (8.16.0.27/8.16.0.27) with ESMTPS id xA4IQbN8092207 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=OK) for <oauth@ietf.org>; Mon, 4 Nov 2019 13:26:38 -0500
Received: by mail-ot1-f71.google.com with SMTP id 9so10501541otc.21 for <oauth@ietf.org>; Mon, 04 Nov 2019 10:26:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pwc.com; s=google; h=mime-version:from:date:message-id:subject:to; bh=k3crTkI3AbIaoDnfZXi7wc0VSFkBfbBV17HEL0GaY6U=; b=Mxy4S/G4zMd/KY+/ce9PASHw+V9a7HG0cZYrTP3y/oghM5uW6hYUv77JERYPY1IMXB /4J+M+zAShFsCOMBq+Ys7/ot3NTtO3H5Hqg0Bm+Kal9dCtKEhq6YI/q03P/4ZN1RafDv fW8Wu7YJdN1FRDc8BNHHFS1SnDWHujEcqyXWi1ci/DQ6qHksXPzXUzl/MJ4zq3xD5T6u iHDPR5nJoHfXptUadJ3pMlTGufRJ7IT2MLiUzXdr1M0rVOYGWX2T3y6aVGyTIX6SyARo 9U3hNKw31xbdPwMaeR7y45ED4yZSpLT3cuIaPzWeKY8JiLewRnEicf/8rlN4DO5uhJez ZrbA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=k3crTkI3AbIaoDnfZXi7wc0VSFkBfbBV17HEL0GaY6U=; b=NMwTmFs+TQM4ks3p0ravRjuYTQyx6VQNvi968LikV0Cv52WLdnHqIfO+IRm9xsUH6T 0I/u5ONX/7oYPMtW/7kp3Cii1DNnLFXPidi9zYIgcWBmvULKE8g9YSVcZdaEdRcTYLgw zXE/SicSpydoigDpgeFWED5SOc+9RDWR7DzhbvWbjE0l4otUaTrPtfBDYnpdq3TutGJM AoxCsgH20UqZIxmkTjH4Xe0w+tAh3c3ReSi8vo3bZVOYDGoSau1D5DkKvXKNGiDb6Wq5 VHAarkaE9OYSeBa1DehcdJoEEiiy3M7NB9TVfmzawXiBD94aDw0nrbEvU84qkwbnoZPJ gIgA==
X-Gm-Message-State: APjAAAXjQeTX/zxASjOd8bK2oCjENnk/ZVYhO20Khev0KWvtNSWc8AAa tgfMnLs/cECCjzAqI/L3gtex+wKgFQzAQtD4TdZMCMeac+qKJ7c92ms+5gkCYguJXxIKwhPPJbg c7U+u75WqjhdyTrSuzmsUuKmAuZowcXd2bBk=
X-Received: by 2002:a05:6830:1be3:: with SMTP id k3mr20095017otb.180.1572891997273; Mon, 04 Nov 2019 10:26:37 -0800 (PST)
X-Google-Smtp-Source: APXvYqyGzQ93TbjcCzSV2zwcyyoMU/o71qTWHgQuidiEhAm01p9AISs/Kxbv6COQMzlKXxQ4O6xN+6+KAKjYvZtjCHI=
X-Received: by 2002:a05:6830:1be3:: with SMTP id k3mr20094973otb.180.1572891996139; Mon, 04 Nov 2019 10:26:36 -0800 (PST)
MIME-Version: 1.0
From: "Luke Synnestvedt (US - ADVS)" <luke.o.synnestvedt@pwc.com>
Date: Mon, 04 Nov 2019 12:26:25 -0600
Message-ID: <CAPiTtb73FQ0d4H31-hFJPUVnPmnpnsznw-SdYWgM5qCBaZ84sw@mail.gmail.com>
To: oauth@ietf.org
Content-Type: multipart/alternative; boundary="000000000000b4732f0596897442"
X-Proofpoint-PoS-Virus-Version: PwCProdVirusScanned
X-Proofpoint-Spam-Details: rule=notspam policy=outboundspam score=0 priorityscore=1501 malwarescore=0 suspectscore=8 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=972 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1908290000 definitions=main-1911040179
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/AJtjADzCGJ1jw0_ttrm9_25yX0Y>
X-Mailman-Approved-At: Mon, 04 Nov 2019 11:58:55 -0800
Subject: [OAUTH-WG] Mail regarding draft-ietf-oauth-token-exchange (version 19)
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Nov 2019 19:38:13 -0000
Hello IETF OAuth team, I'm drafting some internal reference architecture guidance on the topic of Token Exchange within an OAuth 2.0 authentication/authorization flow and have relied heavily on the most recent draft <https://tools.ietf.org/html/draft-ietf-oauth-token-exchange-19> which I know has since expired. I also see that this document has been sent for publication approval - is there an update from the team regarding when this document may be published? Thanks, Luke Synnestvedt -- *Luke Owen Synnestvedt* Cybersecurity Consultant Philadelphia | +1 (215) 280 6032 PricewaterhouseCoopers Advisory Services LLC ______________________________________________________________________ The information transmitted, including any attachments, is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited, and all liability arising therefrom is disclaimed. If you received this in error, please contact the sender and delete the material from any computer. PricewaterhouseCoopers LLP is a Delaware limited liability partnership. This communication may come from PricewaterhouseCoopers LLP or one of its subsidiaries.
- Re: [OAUTH-WG] Mail regarding draft-ietf-oauth-to… Vladimir Dzhuvinov
- [OAUTH-WG] Mail regarding draft-ietf-oauth-token-… Luke Synnestvedt (US - ADVS)
- Re: [OAUTH-WG] Mail regarding draft-ietf-oauth-to… Brian Campbell